Vulnerabilities > CVE-2020-26994 - Out-of-bounds Write vulnerability in Siemens Jt2Go and Teamcenter Visualization

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
siemens
CWE-787
NVD
Published: 2021-01-12
Updated: 2021-02-22

Summary

A vulnerability has been identified in JT2Go (All versions < V13.1.0), Teamcenter Visualization (All versions < V13.1.0). Affected applications lack proper validation of user-supplied data when parsing of PCX files. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of the current process.

Vulnerable Configurations

Part Description Count
Application
Siemens
5

Common Weakness Enumeration (CWE)

References